$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: qajG7HRoryHyCNs/9Z1uA/iwgov0iVeNZUtEeH8h7Bo= Subject key identifier: 8E:50:89:25:A1:6E:90:61:C4:92:BB:A1:44:90:DC:75:C5:AE:74:58 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 0237 Signing time: Mon 02 Mar 2026 02:33:05 +0000 Manifest this update: Mon 02 Mar 2026 02:33:03 +0000 Manifest next update: Mon 09 Mar 2026 02:33:03 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: pK/bxGSjL4fFDT466vEdroJ71/8PSnzNM2c4ZewZxqY=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: BbJgy4+r5xqumD47JYCsm8jlMt7XgJ8HLQRHYGqlUlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Mar 2 02:33:03 2026 GMT Not After : Mar 9 02:33:03 2026 GMT Subject: CN=69a4f6e1-e8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:58:c4:e1:07:83:64:f7:e1:9b:04:8a:cf:77: 2e:a7:9f:e7:5d:cc:5a:3b:0a:13:b6:be:aa:cb:68: 1b:2a:28:56:9d:f6:da:bc:b3:23:71:57:de:b6:e9: d4:52:9c:a0:e2:55:fe:cb:57:9b:cd:a1:f3:70:49: cf:b6:b6:5d:ca:06:55:3c:da:32:b6:f1:b8:89:39: 47:a5:a0:5d:e2:ae:3a:02:8b:b4:ef:0f:fa:21:96: b1:f5:71:a8:c2:77:1f:e9:ed:a3:25:01:b4:71:5f: 24:17:99:af:56:5d:6e:f5:89:ee:cd:c6:6b:6d:89: 6a:68:86:91:9d:1b:3d:a1:7f:bd:a7:66:b7:f6:58: 27:bd:9f:b5:d6:96:51:4e:1b:b6:42:36:40:94:af: 87:ad:a6:65:70:fe:98:85:fc:3b:3b:c1:06:e1:5f: 0e:22:4f:3e:a9:50:c7:2f:60:98:3c:66:a3:97:7f: 91:48:82:2a:5f:e5:ec:37:e8:94:20:1c:5e:82:29: 45:b3:ed:5c:d8:91:53:ea:bb:4f:09:29:28:09:c0: 72:b5:db:5e:09:fb:79:c6:dc:c3:fb:1f:0a:2d:42: 15:ea:5a:ef:48:81:74:c0:26:5d:b8:93:05:9a:e0: cd:e2:7c:88:81:a4:db:16:9f:69:72:db:6d:46:58: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:50:89:25:A1:6E:90:61:C4:92:BB:A1:44:90:DC:75:C5:AE:74:58 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:7a:03:ba:f1:e7:c5:dc:43:5d:8d:a7:46:22:ef:f0:22:f2: fe:93:8b:c1:6f:7a:82:00:05:00:94:7c:06:07:99:56:36:eb: a0:5c:50:7f:73:af:22:9b:9b:ba:b7:73:51:22:14:54:0a:4b: 4e:bd:0b:d0:72:1d:58:77:05:a8:72:a9:44:0f:e2:a8:e9:97: de:c4:ac:cc:c2:de:23:9a:76:8a:1f:c1:ef:0b:5d:4e:66:7c: fd:00:14:a5:a0:9c:fa:2c:1d:78:7f:ce:9c:dc:d0:64:bc:64: e0:9b:52:35:51:39:b7:2b:3f:77:8b:3e:9b:ec:35:18:a2:32: b4:ad:21:4b:c2:52:f8:34:2a:fc:17:30:7d:a1:05:f5:cc:c3: 47:3c:f0:5f:db:98:a7:8c:10:e3:06:7e:bb:33:0c:00:89:ee: 78:7a:05:b6:0a:33:39:9b:07:33:e3:c5:90:06:59:22:02:0a: a1:87:6f:bc:b3:ae:cf:ac:e2:c0:42:1b:90:96:66:9f:12:cd: 71:63:26:80:44:f2:57:83:89:c1:19:d1:4b:bf:99:ef:7f:a8: e6:11:bc:8d:4b:d3:39:aa:ac:81:de:d3:ee:df:84:ff:9c:d0: 2f:6e:a2:07:72:f9:f5:eb:e9:96:b5:18:b3:52:64:62:c3:ae: 07:75:84:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjYwMzAyMDIzMzAzWhcNMjYwMzA5MDIzMzAzWjAYMRYwFAYD VQQDEw02OWE0ZjZlMS1lOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqljE4QeDZPfhmwSKz3cup5/nXcxaOwoTtr6qy2gbKihWnfbavLMjcVfetunU Upyg4lX+y1ebzaHzcEnPtrZdygZVPNoytvG4iTlHpaBd4q46Aou07w/6IZax9XGo wncf6e2jJQG0cV8kF5mvVl1u9YnuzcZrbYlqaIaRnRs9oX+9p2a39lgnvZ+11pZR Thu2QjZAlK+HraZlcP6Yhfw7O8EG4V8OIk8+qVDHL2CYPGajl3+RSIIqX+XsN+iU IBxegilFs+1c2JFT6rtPCSkoCcBytdteCft5xtzD+x8KLUIV6lrvSIF0wCZduJMF muDN4nyIgaTbFp9pctttRliFrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI5QiSWh bpBhxJK7oUSQ3HXFrnRYMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJnoDuvHnxdxDXY2nRiLv8CLy/pOLwW96ggAFAJR8BgeZVjbroFxQf3OvIpub urdzUSIUVApLTr0L0HIdWHcFqHKpRA/iqOmX3sSszMLeI5p2ih/B7wtdTmZ8/QAU paCc+iwdeH/OnNzQZLxk4JtSNVE5tys/d4s+m+w1GKIytK0hS8JS+DQq/BcwfaEF 9czDRzzwX9uYp4wQ4wZ+uzMMAInueHoFtgozOZsHM+PFkAZZIgIKoYdvvLOuz6zi wEIbkJZmnxLNcWMmgETyV4OJwRnRS7+Z73+o5hG8jUvTOaqsgd7T7t+E/5zQL26i B3L59evplrUYs1JkYsOuB3WEzw== -----END CERTIFICATE-----Generated at Mon Mar 2 08:07:20 2026 by rpki-client